Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ljc0cpLuFASyXER8GYnTAPyg2WE.roa
File: ljc0cpLuFASyXER8GYnTAPyg2WE.roa (raw, json)
Hash identifier: APg/vZpfQmkP4Dv2o1r5dkIlY9TlrrapyQp7FZGARsM=
Subject key identifier: 96:37:34:72:92:EE:14:04:B2:5C:44:7C:19:89:D3:00:FC:A0:D9:61
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 019492A4E2595F5BA62CEF4F8CB7927E00F1
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ljc0cpLuFASyXER8GYnTAPyg2WE.roa
Signing time: Thu 23 Jan 2025 10:11:06 +0000
ROA not before: Thu 23 Jan 2025 10:11:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3218
IP address blocks: 193.232.0.0/22 maxlen: 22
193.232.2.0/24 maxlen: 24
193.232.4.0/23 maxlen: 23
193.232.6.0/24 maxlen: 24
193.232.8.0/21 maxlen: 21
193.232.16.0/22 maxlen: 22
193.232.17.0/24 maxlen: 24
193.232.19.0/24 maxlen: 24
193.232.22.0/23 maxlen: 23
193.232.24.0/21 maxlen: 21
193.232.192.0/22 maxlen: 22
193.232.196.0/23 maxlen: 23
193.232.207.0/24 maxlen: 24
193.232.208.0/23 maxlen: 23
193.232.212.0/24 maxlen: 24
193.232.218.0/23 maxlen: 23
194.85.208.0/23 maxlen: 23
194.85.212.0/23 maxlen: 23
194.85.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Jan 2025 14:18:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:92:a4:e2:59:5f:5b:a6:2c:ef:4f:8c:b7:92:7e:00:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 23 10:11:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9637347292ee1404b25c447c1989d300fca0d961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:c6:41:c2:b6:48:82:e1:63:a9:ae:c0:2d:
b6:92:cd:f5:5a:2b:f0:d6:70:26:41:8b:69:14:46:
13:e6:83:5f:c7:96:f3:98:2c:4d:8d:72:eb:52:be:
3d:8d:00:a9:84:75:5c:9d:26:8a:ee:3b:4f:46:2d:
e3:69:eb:30:08:e7:c0:5e:0a:6f:a6:fe:e9:b8:8b:
78:8b:2d:68:86:12:bc:ca:08:24:22:eb:c8:4d:ef:
87:21:86:f4:ed:37:fe:78:cb:98:b3:06:07:cb:1b:
83:b4:05:c5:45:1d:5c:49:8a:42:eb:02:40:4a:ba:
4c:94:83:7d:43:70:61:5d:06:38:43:f7:40:a7:b0:
de:03:7c:e9:68:80:6d:18:15:be:e6:0d:4a:93:ce:
17:4a:dc:85:89:59:6d:99:c4:eb:38:72:e6:89:d2:
08:4e:1e:c7:3f:66:3c:3d:49:60:a1:e2:06:4e:3f:
12:ff:8e:cc:4e:aa:4c:8d:64:53:df:62:6e:4f:70:
ed:3b:e4:fb:82:5b:d9:c5:d6:a6:ae:7e:85:2b:67:
73:ad:9a:9b:36:6c:83:19:ed:38:16:29:ca:0a:3e:
50:ed:78:63:7f:87:5f:5b:ca:09:34:c1:80:fb:40:
aa:23:75:1d:ba:9e:cc:35:fd:bd:a0:0e:8c:63:fb:
aa:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:37:34:72:92:EE:14:04:B2:5C:44:7C:19:89:D3:00:FC:A0:D9:61
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ljc0cpLuFASyXER8GYnTAPyg2WE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.0.0-193.232.6.255
193.232.8.0-193.232.19.255
193.232.22.0-193.232.31.255
193.232.192.0-193.232.197.255
193.232.207.0-193.232.209.255
193.232.212.0/24
193.232.218.0/23
194.85.208.0/23
194.85.212.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:90:92:aa:50:b8:79:0c:1f:ba:5d:6e:89:ca:ed:27:b7:ba:
7c:bb:b1:d3:97:48:d1:cd:ff:69:45:4a:d8:70:ea:7f:0e:27:
99:34:c4:98:63:08:fe:8c:d9:68:3f:85:a1:21:0f:27:02:70:
f9:0f:4a:a4:13:7e:1b:45:a2:e3:96:1a:42:d6:df:3d:66:ad:
b0:38:bc:56:e7:9b:7c:49:18:e5:fe:a3:e2:17:4c:af:6b:84:
57:78:fa:11:1b:30:36:52:1e:02:4d:7c:86:7a:5f:ed:e6:8f:
00:06:b0:2d:59:5f:b0:1c:0b:11:60:88:5a:55:78:82:da:74:
b1:91:75:30:c8:00:a4:5d:95:14:0e:67:6b:17:0f:b8:10:09:
34:05:52:d3:29:6d:a9:8d:29:26:e5:bd:4f:ba:0d:3e:45:31:
93:fe:71:ba:d9:df:5b:cf:9f:1b:c9:5c:33:6c:a1:dc:5f:bd:
7d:a6:61:74:d3:87:b9:e9:18:6a:99:66:23:06:ce:d8:e8:92:
7d:36:67:3c:e2:32:11:6f:90:ff:44:aa:40:4c:58:41:3a:0d:
d1:40:ef:12:2c:10:40:22:dc:e7:66:30:38:50:9f:c5:ed:6b:
9f:d0:b3:a3:c8:b3:9a:d7:69:19:8f:88:f9:a8:e9:87:3f:6a:
ca:d1:8c:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 01:49:56 2025 by rpki-client